Platform
Solutions
Pricing
Why Invicti
Resources Library
Get a demo
Home
/
Web Application Vulnerabilities
/ Missing Update
Web Application Vulnerabilities
Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise
Acunetix Standard & Premium
Missing Update
This page lists
22224 vulnerabilities
in this category.
Critical: 1394
High: 12186
Medium: 7891
Low: 749
Information: 4
Vulnerability Name
CVE
CWE
Severity
PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2017-11362)
CVE-2017-11362
CWE-119
Critical
Telerik Web UI Improper Input Validation Vulnerability (CVE-2017-11357)
CVE-2017-11357
CWE-20
Critical
Telerik Web UI Inadequate Encryption Strength Vulnerability (CVE-2017-11317)
CVE-2017-11317
CWE-326
Critical
phpMyFAQ Improper Restriction of Excessive Authentication Attempts Vulnerability (CVE-2017-11187)
CVE-2017-11187
CWE-307
Critical
Contao Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2017-16558)
CVE-2017-16558
CWE-138
Critical
Internet Information Services Integer Overflow or Wraparound Vulnerability (CVE-2008-1446)
CVE-2008-1446
CWE-190
Critical
Apache Traffic Server Inconsistent Interpretation of HTTP Requests ('HTTP Request Smuggling') Vulnerability (CVE-2019-17559)
CVE-2019-17559
CWE-444
Critical
Oracle Application Server CVE-2008-7233 Vulnerability (CVE-2008-7233)
CVE-2008-7233
-
Critical
WebLogic Deserialization of Untrusted Data Vulnerability (CVE-2017-5645)
CVE-2017-5645
CWE-502
Critical
WebLogic Improper Handling of Exceptional Conditions Vulnerability (CVE-2017-5638)
CVE-2017-5638
CWE-755
Critical
Caddy Web Server Improper Authentication Vulnerability (CVE-2018-21246)
CVE-2018-21246
CWE-287
Critical
Oracle JRE CVE-2012-4681 Vulnerability (CVE-2012-4681)
CVE-2012-4681
-
Critical
b2evolution Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2017-5539)
CVE-2017-5539
CWE-22
Critical
TYPO3 Improper Input Validation Vulnerability (CVE-2009-0258)
CVE-2009-0258
CWE-20
Critical
phpMyAdmin Cryptographic Issues Vulnerability (CVE-2008-7252)
CVE-2008-7252
-
Critical
phpMyAdmin Permissions, Privileges, and Access Controls Vulnerability (CVE-2008-7251)
CVE-2008-7251
CWE-264
Critical
WordPress Improper Input Validation Vulnerability (CVE-2019-20041)
CVE-2019-20041
CWE-20
Critical
Dot CMS Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2017-5344)
CVE-2017-5344
CWE-138
Critical
PHP Integer Overflow or Wraparound Vulnerability (CVE-2017-5340)
CVE-2017-5340
CWE-190
Critical
Oracle JRE CVE-2012-5076 Vulnerability (CVE-2012-5076)
CVE-2012-5076
-
Critical
Apache Tomcat CVE-2017-5651 Vulnerability (CVE-2017-5651)
CVE-2017-5651
-
Critical
WebLogic Deserialization of Untrusted Data Vulnerability (CVE-2019-20330)
CVE-2019-20330
CWE-502
Critical
Oracle JRE CVE-2012-5083 Vulnerability (CVE-2012-5083)
CVE-2012-5083
-
Critical
Oracle JRE CVE-2012-5086 Vulnerability (CVE-2012-5086)
CVE-2012-5086
-
Critical
Oracle JRE CVE-2012-5087 Vulnerability (CVE-2012-5087)
CVE-2012-5087
-
Critical
Oracle JRE CVE-2012-5088 Vulnerability (CVE-2012-5088)
CVE-2012-5088
-
Critical
Atlassian Jira Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') Vulnerability (CVE-2019-20409)
CVE-2019-20409
CWE-138
Critical
WordPress CVE-2008-6767 Vulnerability (CVE-2008-6767)
CVE-2008-6767
-
Critical
Jboss EAP Inconsistent Interpretation of HTTP Requests ('HTTP Request Smuggling') Vulnerability (CVE-2019-20444)
CVE-2019-20444
CWE-444
Critical
Jboss EAP Inconsistent Interpretation of HTTP Requests ('HTTP Request Smuggling') Vulnerability (CVE-2019-20445)
CVE-2019-20445
CWE-444
Critical
Cherokee Out-of-bounds Write Vulnerability (CVE-2019-20800)
CVE-2019-20800
CWE-787
Critical
Drupal Configuration Vulnerability (CVE-2008-6171)
CVE-2008-6171
-
Critical
PrestaShop CVE-2008-5791 Vulnerability (CVE-2008-5791)
CVE-2008-5791
-
Critical
Apache Tomcat Exposure of Resource to Wrong Sphere Vulnerability (CVE-2017-5648)
CVE-2017-5648
CWE-668
Critical
ReviveAdserver Deserialization of Untrusted Data Vulnerability (CVE-2017-5830)
CVE-2017-5830
CWE-502
Critical
PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2008-5557)
CVE-2008-5557
CWE-119
Critical
Envoy Proxy CVE-2019-18802 Vulnerability (CVE-2019-18802)
CVE-2019-18802
-
Critical
Apache Traffic Server Inconsistent Interpretation of HTTP Requests ('HTTP Request Smuggling') Vulnerability (CVE-2019-17565)
CVE-2019-17565
CWE-444
Critical
Oracle Database Server CVE-2009-1992 Vulnerability (CVE-2009-1992)
CVE-2009-1992
-
Critical
Oracle Database Server CVE-2009-1985 Vulnerability (CVE-2009-1985)
CVE-2009-1985
-
Critical
Oracle Database Server CVE-2009-1979 Vulnerability (CVE-2009-1979)
CVE-2009-1979
-
Critical
MODX Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2017-7321)
CVE-2017-7321
CWE-94
Critical
WebLogic Deserialization of Untrusted Data Vulnerability (CVE-2019-17571)
CVE-2019-17571
CWE-502
Critical
Internet Information Services Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2017-7269)
CVE-2017-7269
CWE-119
Critical
WordPress Server-Side Request Forgery (SSRF) Vulnerability (CVE-2019-17669)
CVE-2019-17669
CWE-918
Critical
WordPress Server-Side Request Forgery (SSRF) Vulnerability (CVE-2019-17670)
CVE-2019-17670
CWE-918
Critical
phpMyAdmin Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2019-18622)
CVE-2019-18622
CWE-138
Critical
Drupal CVE-2017-6925 Vulnerability (CVE-2017-6925)
CVE-2017-6925
-
Critical
Envoy Proxy Out-of-bounds Write Vulnerability (CVE-2019-18801)
CVE-2019-18801
CWE-787
Critical
Drupal Data Processing Errors Vulnerability (CVE-2017-6920)
CVE-2017-6920
-
Critical
Handlebars Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') Vulnerability (CVE-2019-19919)
CVE-2019-19919
CWE-138
Critical
Telerik Web UI Deserialization of Untrusted Data Vulnerability (CVE-2019-18935)
CVE-2019-18935
CWE-502
Critical
Dolibarr Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-19212)
CVE-2019-19212
CWE-707
Critical
Sqlite Incorrect Conversion between Numeric Types Vulnerability (CVE-2019-19317)
CVE-2019-19317
CWE-681
Critical
phpMyAdmin Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2009-1151)
CVE-2009-1151
CWE-94
Critical
PrestaShop Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2019-19594)
CVE-2019-19594
CWE-434
Critical
PrestaShop Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2019-19595)
CVE-2019-19595
CWE-434
Critical
phpMyAdmin CVE-2019-19617 Vulnerability (CVE-2019-19617)
CVE-2019-19617
-
Critical
Oracle Database Server CVE-2009-1020 Vulnerability (CVE-2009-1020)
CVE-2009-1020
-
Critical
Sqlite Improper Check for Unusual or Exceptional Conditions Vulnerability (CVE-2019-19646)
CVE-2019-19646
CWE-754
Critical
Atlassian Jira Deserialization of Untrusted Data Vulnerability (CVE-2017-5983)
CVE-2017-5983
CWE-502
Critical
Django Weak Password Recovery Mechanism for Forgotten Password Vulnerability (CVE-2019-19844)
CVE-2019-19844
CWE-640
Critical
Joomla Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2019-19846)
CVE-2019-19846
CWE-138
Critical
LimeSurvey Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2019-25019)
CVE-2019-25019
CWE-138
Critical
Python Numeric Errors Vulnerability (CVE-2008-5031)
CVE-2008-5031
-
Critical
Oracle JRE CVE-2013-0445 Vulnerability (CVE-2013-0445)
CVE-2013-0445
-
Critical
Oracle JRE CVE-2013-0428 Vulnerability (CVE-2013-0428)
CVE-2013-0428
-
Critical
LimeSurvey CVE-2008-2570 Vulnerability (CVE-2008-2570)
CVE-2008-2570
-
Critical
WordPress Improper Input Validation Vulnerability (CVE-2008-2392)
CVE-2008-2392
CWE-20
Critical
Ruby Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') Vulnerability (CVE-2017-17790)
CVE-2017-17790
CWE-138
Critical
Nexus Repository Manager Use of a Broken or Risky Cryptographic Algorithm Vulnerability (CVE-2017-17717)
CVE-2017-17717
CWE-327
Critical
Jboss EAP Deserialization of Untrusted Data Vulnerability (CVE-2017-17485)
CVE-2017-17485
CWE-502
Critical
PHP Insufficient Entropy Vulnerability (CVE-2008-2108)
CVE-2008-2108
CWE-331
Critical
PHP CVE-2008-2051 Vulnerability (CVE-2008-2051)
CVE-2008-2051
-
Critical
PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2008-2050)
CVE-2008-2050
CWE-119
Critical
«
1
...
11
12
13
...
297
»
